aliyun-wan-digital-human

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's SKILL.md and scripts/prepare_digital_human_request.py explicitly require public HTTP/HTTPS image_url (and audio_url) inputs that the Model Studio detect/generate models will fetch and process, so arbitrary third-party/user-provided content can be ingested and influence validation and generation decisions.